Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors.
History

Thu, 18 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
Title Buffer Overflow in AdminCenter Enables Remote Code Execution in Synology BeeStation OS

Wed, 17 Jun 2026 05:15:00 +0000

Type Values Removed Values Added
Title Buffer Overflow in AdminCenter Allows Remote Code Execution in Synology BeeStation OS

Tue, 16 Jun 2026 06:30:00 +0000

Type Values Removed Values Added
Title Buffer Overflow in AdminCenter Allows Remote Code Execution in Synology BeeStation OS

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:synology:beestation_os:*:*:*:*:*:*:*:*

Sat, 30 May 2026 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Synology
Synology beestation Manager
Synology beestation Os
Vendors & Products Synology
Synology beestation Manager
Synology beestation Os

Wed, 27 May 2026 22:00:00 +0000

Type Values Removed Values Added
Title Remote Code Execution via Buffer Overflow in Synology BeeStation Manager/AdminCenter

Wed, 27 May 2026 16:30:00 +0000

Type Values Removed Values Added
Description Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation Manager (BSM) before 1.3.2-65648 and Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors. Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors.

Wed, 27 May 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 27 May 2026 10:45:00 +0000

Type Values Removed Values Added
Title Remote Code Execution via Buffer Overflow in Synology BeeStation Manager/AdminCenter

Wed, 27 May 2026 09:00:00 +0000

Type Values Removed Values Added
Description Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation Manager (BSM) before 1.3.2-65648 and Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors.
Weaknesses CWE-120
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: synology

Published:

Updated: 2026-05-27T15:13:20.556Z

Reserved: 2025-11-04T06:21:03.851Z

Link: CVE-2025-12686

cve-icon Vulnrichment

Updated: 2026-05-27T13:44:02.737Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-27T09:16:26.357

Modified: 2026-06-17T08:32:48.263

Link: CVE-2025-12686

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T13:00:16Z